Shulou(Shulou.com)06/01 Report--

This article will explain in detail how to install and use Sparta. The editor thinks it is very practical, so I share it with you for reference. I hope you can get something after reading this article.

Sparta is a Python GUI application tool integrated by kali linux's system itself. Sparta is a collection of Nmap, Nikto, Hydra and other tools, making use of the excellent functions of each tool to complete the integrated tool stream of information collection, scanning and blasting.

Installation

Please clone the latest version of SPARTA from GitHub:

Git clone https://github.com/secforce/sparta.git

Or, download the latest version of the Zip file from here.

Cd / usr/share/git clone https://github.com/secforce/sparta.git

Place the sparta file in the / usr/bin/ directory and give it runnable permissions. Type 'sparta' in any terminal to start the application.

Scope of network penetration testing

Add a list of target hosts or target hosts to the test scope to identify security weaknesses in an organization's network infrastructure. Select the menu bar-"File"-> "Add host (s) to scope"

Network Penetration Testing

According to the specific situation of your network, you can add a range of IP addresses to scan. After the scan range is added, the Nmap will start the scan and get the results quickly, and the scan phase is over.

Open ports and services

The Nmap scan results provide open ports and services on the target.

Network Penetration Testing

Brute force attack on open port

Let's brute force the list of users and their valid passwords through the server message block (SMB) protocol on port 445. Right-click and select the Send to Brute option. You can also select open ports and services on the target of discovery. Browse and add a dictionary file in the username password box.

Click "Run" to initiate a violent attack on the target. The figure above shows that the brute force attack on the target IP address is successful and a valid password is found. Failed login attempts in Windows are always logged in the event log. The policy of changing passwords every 15 to 30 days is a very good practical experience. A strong password policy is strongly recommended. The password lockout policy is one of the best ways to prevent this brute force attack (the account is locked after five failed login attempts). Integrating critical business assets into SIEM (Security conflict & incident Management) will detect such attacks as quickly as possible. SPARTA is a very time-saving suite of GUI tools for the scan and enumeration phases of penetration testing. SPARTA can scan and violently crack various protocols. It has many functions! Good luck with your test!

This is the end of the article on "how to install and use Sparta". I hope the above content can be of some help to you, so that you can learn more knowledge. if you think the article is good, please share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.